Hacking Workshop

Take a different point of view on your system from the perspective of an attacker. The softScheck Hacking Workshop is presented by experienced Penetration Testers to convey a comprehensive insight into possible attacks of hackers. It is very practically oriented and after a quick introduction in types of vulnerabilities and the use of attacking tools you are ready to start over on the prepared exercises to attack test systems on your own. Each day of the workshop will cover different topics divided into web applications and network services.

Agenda

Introduction

Recent Incidents

Live-Demos

Attacker Types

Information Gathering

Active/Passive

Google Hacking

Shodan

Port Scanning

Metadata Analysis

Exploiting Web Vulnerabilities

Cross-Site-Scripting

BeEF – The Browser Exploitation Framework

SQL Injection

SQLmap

Cross-Site Request-Forgery

Authentication & Authorization Flaws

Local & Remote File Inclusion

API abuse

From Exploit To Shell

Network Scanning

Querying Common Network Services

Vulnerability Scanning

Exploiting

Metasploit

Exploit Databases

Exercises

Privilege Escalation

At the end of this Workshop, you will receive a participation certificate.

Learning goals

The participants learn to use the tools of hackers, the most common vulnerabilities, to exploit them in the practices and gain knowledge about current security incidents with usual attack vectors.